Security Advisory

CVE-2014-6047

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-08-28 17:00:00

Last updated 2024-08-06 12:03:02

Assigner mitre

State PUBLISHED

Description

phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect "download an attachment" permission checks.

← Browse all CVEs View on cve.org ↗